cdbb28492e43b7463fa80d31733cb826_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cdbb28492e43b7463fa80d31733cb826_JaffaCakes118
Size

508KB
MD5

cdbb28492e43b7463fa80d31733cb826
SHA1

106e76fe8033ecdbb9350f2e2873a82784872397
SHA256

1d3d43c49f1df156380756946a950edc5f608560fd197fad73e3c160f5c5fb7b
SHA512

19284d6705443f4c51cad772d88c75f5eb78085cc3c3d4716a0265ccb2a87f209fc691dc2e20960c3ace8aedc8dee806d9471dc5398b5aec8f6821820871604b
SSDEEP

12288:sN83i1WAvRXphXpUSBmKy357Rdg+rodOB5VFLVrw:sN8op1ppBFy357RdjoWLe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cdbb28492e43b7463fa80d31733cb826_JaffaCakes118

Files

cdbb28492e43b7463fa80d31733cb826_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 506KB - Virtual size: 505KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ